PTZOptics NDI and SID Cameras Configuration Command Injection

Go back

severity: high
date: September 17, 2024
Affecting: PTZOptics PT30X-SDI before 6.3.40
PTZOptics PT30X-NDI-xx-G2 before 6.3.40
Other white-label AV equipment based on ValueHD Corporation PTZ Camera Firmware
CVE: CVE-2024-8957
CVE type: OS Command Injection
CVSS: 7.2
CVSS V3 Vector: AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
References: Firmware
Credit: Konstantin Lazarev of GreyNoise